UAC-0173 against the Notary Office of Ukraine
NetmanageIT OpenCTI - opencti.netmanageit.com
SUMMARY :
A criminal group, UAC-0173, has resumed cyberattacks targeting notaries in Ukraine to gain unauthorized access to state registers. The attackers use phishing emails with malicious executable files to infect computers with DARKCRYSTALRAT malware. They then install additional tools like RDPWRAPPER and BORE for remote access, and employ various programs to bypass security measures and steal authentication data. The group uses compromised computers to send further malicious emails. CERT-UA, with the help of the Notary Chamber of Ukraine, has identified affected computers in six regions and prevented unauthorized actions. Authorities urge notaries to remain vigilant and report suspicious activities immediately.
OPENCTI LABELS :
dcrat,xworm,peaklight,rdpwrapper,darkcrystalrat,state registers
Open in NetmanageIT OpenCTI Public Instance with below link!
Use public read only username and password on login page.
NOTE : Use Public READ only user credentials on login page banner.
UAC-0173 against the Notary Office of Ukraine